
United States Patent and Trademark Office 



UNITED STATES DEPARTMENT OF COMMERCE 
United States Patent and Trademark Office 
Address: COMMISSIONER FOR PATENTS 
P.O. Box 1450 

Alexandria, Virginia 22313-1450 
www.uspto.gov 



APPLICATION NO. 


FILING DATE 


FIRST NAMED INVENTOR 


ATTORNEY DOCKET NO. 


CONFIRMATION NO. 


09/933,760 


08/22/2001 


Timothy C. Williams 


P62I41USI 


6977 



136 7590 09/27/2005 

JACOBSON HOLMAN PLLC 
400 SEVENTH STREET N.W. 
SUITE 600 

WASHINGTON, DC 20004 



EXAMINER 



KIM, JUNG W 



ART UNIT 



PAPER NUMBER 



2132 

DATE MAILED: 09/27/2005 



Please find below and/or attached an Office communication concerning this application or proceeding. 



PTO-90C (Rev. 10/03) 



Office Action Suffimsrv 


Application No. 

09/933,760 


Applicant(s) 

WILLIAMS, TIMOTHY C. 


Examiner 

Jung W. Kim 


Art Unit 

2132 





~ The MAILING DATE of this communication appears on the cover sheet with the correspondence address - 
Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) OR THIRTY (30) DAYS, 
WHICHEVER IS LONGER, FROM THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)K Responsive to communication(s) filed on 04 September 2005 . 
2a)D This action is FINAL. 2b)S This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 1 1 , 453 O.G. 213. 

Disposition of Claims 

4) [x3 Claim(s) 25-32,34,37-45.47.49,54.59.69-71.73-75 and 85-89 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) |3 Claim(s) 25-32.34.37-45.47.49.59.69-71.73.85-87 and 89 is/are allowed. 

6) M Claim(s) 54. 74.75 and 88 is/are rejected. 

7) D Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10)D The drawing(s) filed on is/are: a)D accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 

Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 
11 )□ The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 1 1 9 

1 2)D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 1 9(a)-(d) or (0- 
a)D All b)Q Some * c)D None of: 

1 .□ Certified copies of the priority documents have been received. 

2. D Certified copies of the priority documents have been received in Application No. . 

3. Q Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 



1 . This Office action is in response to the amendment filed on August 4, 2005. 

2. Claims 25-32, 34, 37-45, 47, 49, 54, 59, 69-71, 73-75, and 85-89 are pending. 

3. Claims 25, 27, 28, 37, 38, 54, .59, 69, 70, 85, 86 and 89 are amended. 

4. Claims 1-24, 33, 35-36, 46, 48, 50-53, 55-58, 60-68, 72, and 76-84 are canceled. 

5. The text of those sections of Title 35, U.S. Code not included in this action can 
be found in a prior Office action. 



Response to Amendment 

6. After further review of the prior art, the amendments to claims 25-32, 34, 37-45, 
47, 49, 59, 69-71, 73-75, 85-87 and 89 has been found to overcome the 103(a) 
rejections. The references of the prior art disclose a similar invention; however, none of 
the references of the prior art, either alone or in combination disclose the limitation of 
the plurality of user profiles being generated by a network security controller for a single 
user identifier, the user selecting one of the plurality of user profiles, wherein 
discretionary access control and mandatory access control policies are provided for 
each user profile. Hence, the 103(a) rejections to claims 25-32, 34, 37-45, 47, 49, 59, 
69-71, 73-75, 85-87 and 89 are withdrawn. 
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Response to Arguments 

7. Applicant's arguments, with respect to the rejection(s) of claim(s) 54 and 88 
under 35 U.S.C. 103(a) have been fully considered and are persuasive. Therefore, the 
rejection has been withdrawn. However, upon further consideration, a new ground(s) of 
rejection is made in view of Boyle et al. U.S. Patent No. 5,577,209 (hereinafter Boyle) in 
view of Kung USPN 5,241 ,594 (hereinafter Kung). 

Claim Rejections - 35 USC §112 

8. The following is a quotation of the second paragraph of 35 U.S.C. 112: 

The specification shall conclude with one or more claims particularly pointing out and distinctly 
claiming the subject matter which the applicant regards as his invention. 

9. Claims 74 and 75 are rejected under 35 U.S.C. 112, second paragraph, as being 
indefinite for failing to particularly point out and distinctly claim the subject matter which 
applicant regards as the invention. 

10. Claims 74 and 75 recites the limitation "each security device". There is 
insufficient antecedent basis for this limitation in the claim. 

Claim Rejections - 35 USC § 103 

1 1 . The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 
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12. Claims 54 and 88 are rejected under 35 U.S.C. 103(a) as being unpatentable 
over Boyle et al. U.S. Patent No. 5,577,209 (hereinafter Boyle) in view of Kung USPN 
5,241 ,594 (hereinafter Kung). 

13. As per claim 54, Boyle discloses a multi-level secure network having a plurality of 
host computers accessible to users and interconnected with the Internet, each user 
having a user identifier for accessing the secure network (see Boyle, Abstract; col. 2:46- 
65; figs. 1 and 2), the secure network comprising: 

a. a network security controller for enabling a security officer to generate a 
user profile for a user identifier that a user inputs to access the network, each 
user profile defining at least one destination from a multiplicity of destinations 
which a user is authorized to access, and for sending a user profile to a security 
device (3:30-42; 4:27-30 and 45-53; 5:33-65, especially lines 50-52; 6:15-32; 
8:51-62, especially line 59; 9:38-46; 10:34-42; fig. 1 and related text); and 

b. security systems associated with the host computers for receiving from the 
security officer the user profile generated at the network security controller, each 
security system associated with one host computer, each security system having 
an authorization mechanism for authorizing users based on a single user 
identifier for each user at the associated host computer, the security system 
permitting the authorized user, via the associated host computer, to select a user 
profile associated with the user identifier and for restricting access of the host 
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computer to the destinations defined in the selected user's profile, and wherein 
each security system includes a communication control system to control access 
of the host computer to the communication medium, the communication control 
system including a data storage device for storing data provided by the host 
computer in a memory space, and for transferring data out of the memory space 
while making the transferred data inaccessible to the host computer (4:40-44; 
5:1-8; 7:46-8:21, especially lines 47 and 51-52; 10:31-42; figs. 1, 4A-F, and 6A). 
14. Boyle does not expressly disclose the network security controller generates a 
plurality of user profiles associated with the user identifier, wherein a single user selects 
a profile from the plurality of user profiles to access the restricted destinations. Kung 
teaches generating a plurality of user profiles for a single user, wherein the plurality of 
user profiles are associated with a user identifier, wherein a single user logs into a 
multiple logon server using the user identifier. When a user requests access to another 
portion of the network, a profile (user ID and encrypted password to access the another 
portion of the network) from the plurality of user profiles to access the restricted 
destinations is forwarded by the multiple logon server to the another portion of the 
network, wherein this profile is authenticated (5:37-6:2). This enables the user to 
automatically log on to a remote server once the user has logged on to the multiple 
logon server and indicated a desire to access a remote host computer. Hence, it would 
be obvious to one of ordinary skill in the art at the time the invention was made for the 
network security controller to generate a plurality of user profiles associated with a user 
identifier, wherein a single user selects a profile from the plurality of user profiles to 
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access the restricted destinations. This modification is desirable since it enables user- 
transparency when accessing remote services requiring additional authorization (Kung, 
2:5-10). The aforementioned covers the limitations of claim 54. 

15. As per claim 88, the rejection of claim 54 under 35 U.S.C. 103(a) is incorporated 
herein (supra). In addition, at least one of the plurality of user profiles includes a 
plurality of destinations (the SNIU allows a user based on mandatory and discretionary 
access controls, and not restricted to any one destination). 

Allowable Subject Matter 

16. Claims 25-32, 34, 37-45, 47, 49, 59, 69-71 , 73, 85-87 and 89 are allowed. 

1 7. Claims 74 and 75 would be allowable if rewritten to overcome the rejection(s) 
under 35 U.S.C. 1 12, 2nd paragraph, set forth in this Office action and to include all of 
the limitations of the base claim and any intervening claims. 

Conclusion 

1 8. The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 

See enclosed form PTO-892. 
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Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Jung W. Kim whose telephone number is 571-272-3804. 
The examiner can normally be reached on M-F 9:00-5:00. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gilberto Barron can be reached on 571-272-3799. The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, 4 contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 




Jung W Kim 
Examiner 
Art Unit 21 32 
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SUPERVISORY PATENT EXAMINER 
TECHNOLOGY CENTER 2100 



